The division of data into isolated blocks for the purpose of reducing risk; e.g., the isolation of the operating system, application software , and files from one another in a storage device in order to provide protection against unauthorized or concurrent access. [After 2382-pt.8] 2. A nonhierarchical grouping of sensitive information used to control access to data more finely than with hierarchical security classification alone. [INFOSEC-99]